af326334d481121b9cf1f3a4bebdc40c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af326334d481121b9cf1f3a4bebdc40c_JaffaCakes118
Size

200KB
MD5

af326334d481121b9cf1f3a4bebdc40c
SHA1

3c7f7af5b2fc584109310df24d785e9873fe9717
SHA256

c5edc54a11f15786f470c98456a9e8952ce2fcc6452c9ce3a24547114372cae5
SHA512

d328bd765be368a3eb6df580a82947affdf772362365e10c2662e049767ba35c6e5250fbf45eef288e5f4d7c0040357cf9e9d1eafe09dbc6be16ba187e88e0c8
SSDEEP

3072:EVT6sVAO8IjxHTBkVmEVk80G2hvUNVjFRXQ9hqAau0EPCRXnG+v6Eh0fZCYjhu6A:EVBFzOmEVB2CjFFQ9hqAV0FdojhXfS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af326334d481121b9cf1f3a4bebdc40c_JaffaCakes118

Files

af326334d481121b9cf1f3a4bebdc40c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

0
Size: 132KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

1
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

3
Size: 48KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE